CVE-2025-35970

Summary

On multiple products of SEIKO EPSON and FUJIFILM Corporation, the initial administrator password is easy to guess from the information available via SNMP. If the administrator password is not changed from the initial one, a remote attacker with SNMP access can log in to the product with the administrator privilege.

Affected Software

VendorProductVersion RangeStatus
SEIKO EPSONMultiple EPSON productsee the information provided by the vendoraffected
FUJIFILM CorporationFRONTIER DX400Wall versionsaffected

Weaknesses

  • CWE-1391: Use of weak credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References